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LISTING OF CLAIMS 




(currently amended) A computerized method braving a 
process flow operating over a computer network comprising a 
plurality of interconnected computers and a plurality of 
resources, each computer including a processor; memory and 
input/output devices, each resource operativ/ly coupled to 
at least one of the computers and executing/at least one of 
the activities in the process flow, the/method comprising 
the steps of: 

automatically assembling an electronic authorization of 
a transaction r.omorisina an elect r onic representation of the 
transaction and at least one verif/able role certificate for 

each role for which approva/ is required 

authorization of the transactic 



to obtain 



distributing sairi Aec tronic authorization for. 

completion of said at leas/ on * verifiable role certificate; 

extracting completed verifiable role certificates from 
said electronic authorization; and 

verifying whether completed role certificates, 
associated with jAe authorization, are themselves authentic. 

2. (origina/) The method of claim 1 wherein roles 
associated /ith the role certificates are hashed and 
compared w^th hashed roles in a database of hashed roles, 
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3. (original) The method of claim 1 wherein/ the 
authorization is further insured by verifying that role 
certificates associated with the authorization correspond 
with roles in a permission set of roles of an authorization 
structure, the role certificates of which bein/ required to 
authorize the transaction. / 

4. (original) The method of claim/ 3 wherein the 
authorization structure is an authorization tree. 

5. (original) The method of claim 3^wherein the roles are 
extracted from the role certifica/es associated with the 
transaction, each extracted role/ being hashed and these 
hashed roles being concatenated/and hashed again, and then 
concatenated with hashes of otjher permission sets, if any, 
according to the authorization structure and hashed once 
again, resulting in a computed hash value which may be 
compared to that which/was signed by the Transaction 
Administrator, a match vindicating that the transaction is 
authorized. / 

6. (currently amended) A distributed workflow management 
system, the management system operating over a computer 
network comprising a plurality of interconnected computers 
and a plurality of resources, each computer including a 
processor, memory and input/output devices, each resource 
operatively /coupled to at least one of the computers and 
executing least one of the activities in a process flow, 
the syste/n comprising: 
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code for ^iii-nmaticallv assembling and distributing^ 
electronic authorization of a transaction comprisin/ an 
p lR rtronic ronrftsentat i nn of the transaction and at/least 
nn, verifiable role c » rt-i f 1 rate for each role f/r which 
^nnroval is r^iired to *~ completed to obtain authorization . 
of the transaction ; 

code for extracting completed verifiable . role 
certificates from said electronic authorization; and 

code for verifying whether comolet/d role certificates, 
associated with the authorization, ar/ themselves authentic 

7. (original) The system of /claim 6 wherein roles 
associated with the role certificates are hashed and 
compared with hashed roles in jf database of hashed roles. 

8. (original) The system of claim 6 wherein the 
authorization is further/ insured by verifying that role 
certificates associated/with the authorization correspond 
with roles in a permission set of roles of an authorization 
structure, the role /ertificates of which being required to 
authorize the transaction. 

9. (original) / The system of claim 8 wherein the 
authorization -Structure is an authorization tree. 

10. (original) The system of claim 8 wherein the roles are 
extracted/ from the role certificates associated with the 
transaction, each extracted role being hashed and these 
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hashed roles being concatenated and hashed again, and #nen 
concatenated with hashes of other permission sets, iy any, 
according to the authorization structure and hashed once 
again, resulting in a computed hash value whicK may be 
compared to that which was signed by the /Transaction 
Administrator, a match indicating that the tx?4nsaction is 
authorized. / 

11. (currently amended) A computer izecl/method having a 
process flow operating over a computer network comprising a 
plurality of interconnected computers/ and a plurality of 
resources, each computer including ar processor, memory and 
input/output devices, each resource operatively coupled to 
at least one of the computers andr executing at least one of 
the activities in the process /flow, the method comprising 
the steps of: / 

obtaining aooemblino / an electronic authorization of a 
transaction comprising an electronic representation of the 
transaction and at lease one verifiable role certificate for 
each role for which approval is reguired to be completed to 
obtain authorization of the transaction ; 

extract ing /bompleted verifiable role certificates from 
said electronic^ authorization; and 

verify/ng whether completed role certificates, 
associated /with the authorization, are themselves authentic. 
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12. (original) The method of claim 11 whereinyfoles 
associated with the role certificates are hash/d and 
compared with hashed roles on a database of hashed/oles. 

13. (original) The method of claim 11 /wherein the 
authorization is further insured by verifying that role 
certificates associated with the authoriz/tion correspond 
with roles in a permission set of roles o/ an authorization 
structure, the role certificates of whi^n being required to 
authorize the transaction. 

14. (original) The method of /claim 13 wherein the 
authorization structure is an authorization tree. 

15. (original) The method of claim 13 wherein the roles 
are extracted from the role Certificates associated with the 
transaction, each extracted role being hashed and these 
hashed roles being concatenated and hashed again, and then 
concatenated with hashes of other permission sets, if any, 
according to the authorization structure and hashed once 
again, resulting *h a computed hash value which may be 
compared to tha/ which was signed by the Transaction 
Administrator, Jk match indicating that the transaction is 
authorized. 

16. (currently amended) A distributed workflow management 
system, pie management system operating over a computer 
network /comprising a plurality of interconnected computers 
and a/plurality of resources, each computer including a 
processor, memory and input /output devices, each resource 
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operatively coupled to at least one of the conputets and 
executing at least one of the activities in a proems flow, 

the system comprising: 

code for obtaining assembling an/ electronic 
authorization of a- transaction rom prisinq/an electronic 
re presentation of the transaction , 

verifiable ro^ artific e ^ ^ .ach mlp/or which approval 



is recruired to b^ comple* -*^ to obtain 
transaction; 



ithorization of the 



code 



for extracting completed 



certificates from said electronic afuthorizat 



verifiable 
ion; and 



code for verifying 
certificates, associated wj 
themselves authentic. 



whether completed 
l the authorization, 



role 



role 
are 



17. (original) The system of claim 16 wherein roles 
associated with the /ale certificates are hashed and 
compared with hashed r/les in a database of hashed roles. 

18. (original) TKe system of claim 16 wherein the 
authorization is /further insured by verifying that role 
certificates associated with the authorization correspond 
with roles in /permission set of roles of an authorization 
structure, tb4 role certificates of which being required to 
authorize t#e transaction. 

19. (or/ginal) The system of claim 18 wherein the 
authorisation structure is an authorization tree. 
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20. (original) The system of claim 18, wherein the/ roles 
are extracted from the role certificates associated yfoth the 
transaction, each extracted role being hashed /nd these 
hashed roles being concatenated and hashed again, and then 
concatenated with hashes of other permission aets, if any, 
according to the authorization structure and hashed once 
again, resulting in a computed hash valu/ which may be 
compared to that which was signed by /the Transaction 
Administrator, a match indicating that /he transaction is 
authorized. 

21. (original) A Transaction Autho/ization Method encoded 
on a computer readable medium, /the method having the 
following steps: 

(a) receiving a request fo/ a transaction; 

(b) obtaining an electronic representation of a 
document having devils of the transaction from a 
Digital Document Database ; 

(c) obtaining the /role certificate signed with a 
signature by A Transaction Administrator from a 
Role Certif/cate Database and verifying the 
signature; 

(d) returning/the transaction details to the requester; 

(e) awaitin/ and receiving from the requester the 
completed representation, signed by the requester; 

(f) requesting the Authorization Structure for the 
transaction from the Authorization Structure 
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Database, the Authorization Structure bfeing 
pre-signed with a signature by the Transaction 
Administrator and verifying the signature, and 
choosing a permission set of role name? and user 
members of the permission set to contaczt to sign in 
these role names; 

(g) forwarding details of the transaction request with 
the signature of the requester/ to others having 
roles corresponding to the cj^sen permission set 
and collecting signatures of/each role indicated in 
the permission set; 

(h) requesting role certificates from the Role 
Certificate Database arid signatures for each member 
of the permission se/ and encoding the same on the 
document; and 

(i) forwarding the/ completed electronic document 
including the Signatures and role certificates to 
the requesteyv the document including authorization 
details required in order to confirm the validity 
of the transaction, 



22. (original/5 The method of claim 21 wherein the role 
certificates /and the Authorization Structure consist of 
hashed information about permission sets and roles , such 
hashed icfformation substituting for the unhashed role 
certificates and permission sets. 
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23. (original) A Transaction Verification Method encoded 
on a computer readable medium, the method having /the 
following steps: 

(a) receiving an electronic document representing a 
transaction, associated transaction details being 
signed by a Transaction Authority, a c/llection of 
role certificates certifying named roles signed by 
a Role Authority, the transaction emails signed by 
each of the signing keys corresponding to the 
verification keys in the role certificates, and the 
Authorization Structure; 

(b) using a verification key of/the Role Authority to 
check each certificate on the do/ument; 

(c) in the following manner, /checking the signatures on 
the transaction details/using the verification keys 
in the supplied role *4rtif icates : 



they 



named roles from the role 



(e roles using a 



hash-of -hashes 



L extracting 
certificates; 

ii. hashing 
process ; 

the computed hash value of the 
against that was originally signed by 
ion Authority to ensure that it is 



1X1 . 

transactio 
the Tran 



checking 



'acti 



equal t/the value for the transaction received in 
the Authorization Structure; 

iv. u*ing the output of the hash-of -hashes process 
as / input to check the signature on the 
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hash-of-hashes process; if the produced 
hash-of-hashes string matches the hashed/ string 
signed by the Transaction Authority, then 
assuming that the request is author izedyand 

(d) reporting the result 

24. (currently amended) A distributed workflow 

management system encoded with a Transaction Authorization 
Method, comprising the method having the f a llowing nt r V n: 

(a) receiving means for receiving a request for a 
transaction; 

(b) retrieving means for ob/aining an electronic 
representation of a document having details of the 
transaction from a Digital Document Database; 

(c) retrieving means for o/taining the role certificate 
signed with a s/gnature by a Transaction 
Administrator from A Role Certificate Database and 
verifying the signature; 

(d) transmission meafns for returning the transaction 
details to the /requester; 



for receiving from the requester 
representation, signed by the 



(e) receiving meAns 
the completed 
requester, 

(f) querying/ means for requesting the Authorization 
Structure for the transaction from the 
Authorization Structure Database, the Authorization 
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Structure being pre-signed with a signature. 
Transaction Administrator; 



>y the 




(g) verifying means for verifying the signature; 
00 selection means for choosing a permission set of 

role names and user members of the/permission set 

to contact to sign in these role n« 

(i) transmission means for forwarding details of the 
transaction request with the/ signature of the 
requester to others having r/es corresponding to 
the chosen permission set an/ collecting signatures 
of each role indicated in y4 permission set; 

0) retrieving means for requesting role certificates 
from the Role Certificate Database and signatures 
for each member of the/permission set; 

(k) encoding means for encoding the signatures gathered 
in step (j) on the/document; and 

(1) transmission me/s for forwarding the completed 
electronic doc/4ent including the signatures and 
role certificates to the requester, the document 
including authorization details required in order 
to confirm/the validity of the transaction. 

25. (original The system of claim 24 wherein the role 
certificates/and the Authorization Structure consist of 
hashed information about permission sets and roles, such 
hashed information substituting for the unhashed role 
certificates and permission sets. 
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management 



sthod 




26. (currently amended) A distributed workflow 
system encoded with a Transaction Verification 
comprising, the method having the following 3tej*» : 

00 receiver means for receiving an electronic 
document representing a transaction, /associated 
transaction details being signed by a/ Transaction 
Authority, a collection of role / certificates 
certifying named roles signed by a &ole Authority, 
the transaction details signed Jby each of the 
signing keys corresponding to the' verification keys 
in the role certificates, ancj/ the Authorization 
Structure; 

process or means for using A verification key of 
the Role Authority to check/each certificate on the 
document; 




(c) -if* the followin g- 



nuyinor/ - for checking the 
signatures on the transaction details using the 
verification keys in /he supplied role certificates 
by : 



i. extracting the 
certificates; 



named roles from the role 



ii. hashing the ^61es using a hash-of-hashes process; 

iii. checking the computed hash value of the 
transaction against that was originally signed 
by the /Transaction Authority to ensure that it is 
equal/to the value for the transaction received in 
the Authorization Structure; and 
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(d) 



iv. using the output of the hash-of-hashes process as 
input to check the signature Am the 
hash-of-hashes process; if the / produced 
hash-of-hashes string matches the b/shed string 
signed by the Transaction Authority, then 
assuming that the request is authorized; and 
reporting for report ing the result. 



V 



27. (currently amended) A message exchange mechanism 
operating over a computer network /ompri sing a plurality of 
interconnected computers and a plurality of resources, each 
computer including a processor/memory and input/output 
devices, each resource operati^ely coupled to at least one 
of the computers and being a^ie to read and write messages 
to be sent to another reso/rce over the computer network, 
the mechanism performing /he steps of: 

assembling an electronic authorization of a 
transaction comprising r/n R l^r.n^ reD r. s , n f a f ion nf ^ 
transaction and at im/mt one vftrlf^M, ro i* r.rHf^^. 
each rol* f or which Approval is r^n ^ to be rnmn1o ^, 
obtain authorizafciflfe of the transaction : 



extracting/ completed verifiable role certificates from 
said electronic authorization; and 

verifyi/g whether complete^ role certificates, 
associated/with the authorization, are themselves authentic. 
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28. (original) The mechanism of claim 27 wherein 
associated with the role certificates are hashed ai 
compared with hashed roles in a database of hashed^ roles . 





29. (original) The mechanism of claim 27/ wherein the 
authorization is further insured by verifying that role 
certificates associated with the authorisation correspond 
with roles in a permission set of roles of an authorization 
structure, the role certificates of whi^n being required to 
authorize the transaction. 

30. (original) The mechanism of/ claim 29 wherein the 
authorization structure is an authorization tree. 

31. (original) The mechanism/f claim 29 wherein the roles 
are extracted from the role certificates associated with the 
transaction, each extracted role being hashed and these 
hashed roles being concatenated and hashed again, and then 
concatenated with hashes/ of other permission sets, if any, 
according to the authorization structure and hashed once 
again, resulting in /a computed hash value which may be 
compared to that ywhich was signed by the Transaction 
Administrator, a pwtch indicating that the transaction is 
authorized. 



32. (currently amended) A message exchange mechanism 
operating ovAx a computer network comprising a plurality of 
interconnected computers and a plurality of resources, each 
computer /Including a processor, memory and input/output 
devices,/ each resource operatively coupled to at least one 
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of the computers and executing at least one oi 
activities in a process flow, the system comprising: 



the 



code for extracting role certificates of at/least one 
type from a message, said mi» ~^^ tes ^ 
least one verifiahT. rom nnrtific. / ach m1p \_ 

which approva! is rpqn1red , Q bft ^ fcQ 

authorization of t-h^ trans>irt< ft n. and 



code for 
certificates, 



verifying if sa j 



completed role 
associated with the/ authorization, are 
themselves authentic. 




33. (original) The mechanism ol claim 32 wherein roles 
associated with the role ce/ificates are hashed and 
compared with hashed roles in / database of hashed roles. 

34. (original) The mechanism of claim 32 wherein the 
authorization is further/insured by verifying that role 
certificates associated/with the authorization correspond 
with roles in a permis/ion set of roles of an authorization 
structure, the role certificates of which being required to 
authorize the transition. 

35. (original) /The mechanism of claim 34 wherein the 
authorization s/ructure is an authorization tree. 

36. (original, T he mechanism of claim 34, wherein the 
roles are Extracted from the role certificates associated 
with the transaction, each extracted role being hashed and 
these hashed roles being concatenated and hashed again, and 
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then concatenated^h hashes of other permission sets, if 
any, accordin^to the authorization structure and hashed 
once again^esulting in a computed hash value which may be 
compar^to that which was signed by the Transaction 
Administrator, a match indicating that the transaction is 
fathorized. 
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